Amazon Inspector vulnerability scan.
👉 Before you start, set up these services manually:
- Use the Console to enable Inspector.
- Fleet Manager to managed EC2 instances,
Default Host Managementis enough for testing.
Create the test resources:
terraform init
terraform apply -auto-approveThe configuration will create the following resources:
- Lambda
- ECR
- EC2
To scan an ECR image, upload one if none is available:
bash ecrBuildPush.bashIf all goes well, coverage should be 100% for all environments created by this config:
The EC2 instance should be found by the Fleet Manager:
For ECR, vulnerabilities should be shown on Inspector as well: